Native LDAP Plugins are not Allowing Connections via Port 636

(Doc ID 2359065.1)

Last updated on FEBRUARY 08, 2018

Applies to:

MySQL Server - Version 5.7 and later
Information in this document applies to any platform.

Symptoms

Errors will show up in the MySQL error log and can be one of two types depending  on configuration and the LDAP server. The first is:

2018-01-24T15:09:26.573026-08:00 14 [Warning] Plugin authentication_ldap_simple reported: 'Ldap_connection_pool::get: Pool is not ready, LDAP connections creation has failed'
2018-01-24T15:09:26.573042-08:00 14 [ERROR] Plugin authentication_ldap_simple reported: 'Ldap_authentication::initialize LDAP error: Operations error'
2018-01-24T15:09:26.573055-08:00 14 [Note] Plugin authentication_ldap_simple reported: 'Ldap_authentication::initialize: failed to create/ get connection from the pool. '
2018-01-24T15:09:26.573067-08:00 14 [Note] Plugin authentication_ldap_simple reported: 'Ldap_authentication::de_initialize'

The second error you may see is:

2018-01-24T10:01:48.673418-08:00 41864 [ERROR] Plugin authentication_ldap_simple reported: 'Ldap_authentication::user_bind failed LDAP error: Can't contact LDAP server'
.....
2018-01-24T10:01:48.673476-08:00 41864 [Note] Plugin authentication_ldap_simple reported: 'Ldap_authentication::de_initialize putting back connection in the pool'
2018-01-24T10:01:48.673516-08:00 41864 [Note] Access denied for user 'myuser'@'hostname' (using password: YES)
2018-01-24T10:01:48.673582-08:00 41864 [ERROR] Failed to prepare connection

Changes

This only affects the native LDAP plugins - it does not affect the PAM authentication plugin.

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms